vidar | 038ddf7b2a4b4ec663b5b4812cd69ae3ca33ead17f5ecea3b035127353f16c84 | Triage

Sharing

General

Target

artifact.bin
Size

296KB
Sample

240917-kr93cathpb
MD5

668f42ea3fcd963cd8db61160bec7f2e
SHA1

d747fc2396022155d5f0117df9cf923b38cfc6a9
SHA256

038ddf7b2a4b4ec663b5b4812cd69ae3ca33ead17f5ecea3b035127353f16c84
SHA512

ce1c0491197e6e845646ba4b843e28be8242a014f2342d80be6e47635e589d113ab522f412bdb86a61c26d47fbfd61b25c9cb8d3789927a6287fedc2a57657de
SSDEEP

6144:A8ycihpBpCLw8yP6CkbZE1Sk50oXYcCGd1LHUATlX:A3xpyhrQ0oXYcCGd1Lz

Score

10^/10

vidar 14 discovery

Malware Config

Extracted

Family

vidar

Version

2

Botnet

14

C2

https://t.me/tgdatapacks

https://steamcommunity.com/profiles/76561199469677637

http://95.217.240.6:80

Attributes

profile_id
14

Targets

- Target
  
  artifact.bin
- Size
  
  296KB
- MD5
  
  668f42ea3fcd963cd8db61160bec7f2e
- SHA1
  
  d747fc2396022155d5f0117df9cf923b38cfc6a9
- SHA256
  
  038ddf7b2a4b4ec663b5b4812cd69ae3ca33ead17f5ecea3b035127353f16c84
- SHA512
  
  ce1c0491197e6e845646ba4b843e28be8242a014f2342d80be6e47635e589d113ab522f412bdb86a61c26d47fbfd61b25c9cb8d3789927a6287fedc2a57657de
- SSDEEP
  
  6144:A8ycihpBpCLw8yP6CkbZE1Sk50oXYcCGd1LHUATlX:A3xpyhrQ0oXYcCGd1Lz
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2